General

Summary

A vulnerability was found in RSA Authentication Agent for Web up to 5.3 on IIS and classified as critical. Affected by this issue is an unknown function in the library IISWebAgentIF.dll of the component HTTPGET Redirect Handler. The manipulation with an unknown input leads to a buffer overflow vulnerability. Impacted is confidentiality, integrity, and availability.

The weakness was disclosed 10/21/2005 by H. D. Moore with MetaSploit. The advisory is shared for download at metasploit.com. This vulnerability is handled as CVE-2005-4734 since 03/19/2006. The attack may be launched remotely. No form of authentication is required for exploitation. Technical details as well as a public exploit are known.

Applying a patch is able to eliminate this problem. The bugfix is ready for download at knowledge.rsasecurity.com. It is possible to mitigate the weakness by firewalling . The best possible mitigation is suggested to be applying a restrictive firewalling. The vulnerability is also documented in the databases at OSVDB (20151), SecurityFocus (BID 26424) and Secunia (SA17281).